PoC Archive PoC Archive

tag

Linux Kernel

High
Linux Kernel act_pedit Partial COW Page-Cache LPE (CVE-2026-46331)
CVE-2026-46331· Linux Kernel — net/sched/act_pedit (traffic control packet editing) unpatched
High
DirtyClone — Linux Kernel LPE via Cloned Packet Page-Cache Overwrite (CVE-2026-43503)
CVE-2026-43503· Linux kernel (netfilter TEE / __pskb_copy_fclone()) patched
High
ssh-keysign-pwn: pidfd_getfd FD Theft via mm-NULL Exit Window (CVE-2026-46333)
CVE-2026-46333· Linux kernel plus privileged userland binaries (ssh-keysign, chage) patched
High
PinTheft: RDS Double-Free → LPE
Linux kernel (RDS subsystem + io_uring) unpatched
High
DirtyDecrypt / DirtyCBC — rxgk Page-Cache Write (Dirty Pipe Variant)
N/A (reported as duplicate by kernel maintainers; patched on mainline)· Linux kernel — net/rxrpc (rxgk_decrypt_skb) unpatched
High
Linux vsock Use-After-Free VM Escape (CVE-2025-21756)
CVE-2025-21756· Linux kernel (vsock / virtual socket subsystem) patched
High
Linux nf_tables Use-After-Free Local Privilege Escalation (CVE-2024-1086)
CVE-2024-1086· Linux kernel (netfilter nf_tables subsystem) patched
High
Copy Fail Linux Kernel Local Privilege Escalation (CVE-2026-31431)
CVE-2026-31431· Linux kernel (crypto / AF_ALG AEAD path) unpatched
Critical
Dirty Frag: Linux XFRM/RxRPC Page Cache Write Chain LPE
CVE-2026-43500, CVE-2026-43284· Linux kernel patched